$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3232332e32372e3135332e302f32342d3234203d3e203338343936.roa File: 3232332e32372e3135332e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: 0RtLGV//VE5GhAJZjefdGlWXWpqcxCSPAMbvLG8cBUY= Subject key identifier: 0F:1F:DE:05:A4:BB:0B:60:0D:D1:FA:67:C6:9E:62:45:3A:3D:4E:EA Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 6FFC818E9063D05D628E906B20ED5F6B2F54DE25 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3232332e32372e3135332e302f32342d3234203d3e203338343936.roa Signing time: Fri 24 May 2024 05:02:16 +0000 ROA not before: Fri 24 May 2024 04:57:16 +0000 ROA not after: Fri 23 May 2025 05:02:16 +0000 asID: 38496 IP address blocks: 223.27.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:fc:81:8e:90:63:d0:5d:62:8e:90:6b:20:ed:5f:6b:2f:54:de:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: May 24 04:57:16 2024 GMT Not After : May 23 05:02:16 2025 GMT Subject: CN=0F1FDE05A4BB0B600DD1FA67C69E62453A3D4EEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:95:8e:78:34:b1:f3:2a:06:d2:48:d1:08:3e: 53:7c:2d:0a:5e:70:1f:29:85:a5:e2:30:19:fc:a6: 0e:aa:fe:58:81:21:09:20:35:c4:9f:21:b3:42:fe: 54:b5:fc:9f:cf:12:be:0e:0d:c6:39:bf:30:67:a6: 1c:d7:bc:b4:0d:46:35:0f:60:68:5d:8c:81:cf:de: c6:5e:3e:97:38:ac:7e:d2:ec:11:77:e7:81:e8:00: 03:44:2c:6a:54:32:8b:6b:6b:ca:24:0a:c4:46:bf: 57:ca:1a:61:69:ad:71:c5:65:b2:b6:8a:7f:2e:90: 24:fb:79:8c:d3:e8:07:d1:79:d6:d7:6d:43:d5:69: bc:21:55:c4:79:50:78:d8:bb:0c:15:e3:50:12:c8: f6:ea:2b:20:5e:28:ea:5e:cf:a8:a1:e8:55:02:3e: 12:e6:e4:05:0d:08:5d:5e:36:40:99:4e:a4:39:53: a2:fd:30:6b:98:70:d8:d3:10:08:03:d2:9d:85:ac: 5d:13:6f:90:39:6c:ed:46:8e:8a:fb:2f:8e:a6:d5: 35:bc:1b:10:87:21:89:5c:8a:70:57:94:19:cf:d4: 03:0d:46:58:8d:cb:dc:e4:77:25:5c:c2:b8:97:9b: 6a:e5:55:48:f7:f1:92:0d:84:7b:57:b5:0f:11:bc: b0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1F:DE:05:A4:BB:0B:60:0D:D1:FA:67:C6:9E:62:45:3A:3D:4E:EA X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3232332e32372e3135332e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 223.27.153.0/24 Signature Algorithm: sha256WithRSAEncryption 52:9d:c2:6f:d2:a3:11:6d:1b:b0:32:e0:19:20:f6:2a:4b:fe: 9a:e5:3a:5e:2e:95:f6:8a:4b:4d:93:89:7b:d5:81:d7:4c:d9: 80:7b:6c:93:a7:4d:25:6b:55:1b:c2:45:72:cd:30:2e:dd:47: 81:31:6e:f5:1c:3d:a7:25:54:25:68:c7:d7:1e:d2:93:b5:b3: 39:cf:c5:f7:f1:05:04:fa:cf:89:cb:20:be:c9:69:95:db:8b: c9:a9:4f:67:f0:a8:58:07:82:68:b9:b1:3f:67:e7:82:23:ac: b9:55:db:86:94:b4:ee:30:00:83:33:f2:df:b6:ad:b0:a0:ec: 14:18:a0:74:21:7c:d7:34:13:f0:01:c2:8f:55:d7:dd:39:de: 03:87:17:03:cc:bd:1b:d2:41:ab:94:28:2e:97:11:c6:11:65: 9b:00:7d:ec:a4:4d:d2:59:c4:bd:10:37:ce:31:f9:3c:2b:a2: 1a:87:96:28:34:6e:f5:65:ce:43:3d:bc:c9:f0:a8:d2:1f:0f: 46:1b:85:26:40:4b:15:bf:f5:37:f0:8e:b5:d5:46:46:9c:20: 02:43:1b:6d:9f:56:6c:66:2e:36:b9:2e:82:9c:0d:eb:1b:4b: f8:13:d0:99:cd:69:0a:c2:be:76:4c:9f:fd:1e:09:53:3c:8b: f2:37:23:2f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUb/yBjpBj0F1ijpBrIO1fay9U3iUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA1MjQwNDU3MTZaFw0yNTA1MjMwNTAyMTZaMDMxMTAvBgNV BAMTKDBGMUZERTA1QTRCQjBCNjAwREQxRkE2N0M2OUU2MjQ1M0EzRDRFRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhlY54NLHzKgbSSNEIPlN8LQpe cB8phaXiMBn8pg6q/liBIQkgNcSfIbNC/lS1/J/PEr4ODcY5vzBnphzXvLQNRjUP YGhdjIHP3sZePpc4rH7S7BF354HoAANELGpUMotra8okCsRGv1fKGmFprXHFZbK2 in8ukCT7eYzT6AfRedbXbUPVabwhVcR5UHjYuwwV41ASyPbqKyBeKOpez6ih6FUC PhLm5AUNCF1eNkCZTqQ5U6L9MGuYcNjTEAgD0p2FrF0Tb5A5bO1Gjor7L46m1TW8 GxCHIYlcinBXlBnP1AMNRliNy9zkdyVcwriXm2rlVUj38ZINhHtXtQ8RvLDhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDx/eBaS7C2AN0fpnxp5iRTo9TuowHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzIzMzJlMzIzNzJlMzEzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bmTANBgkqhkiG 9w0BAQsFAAOCAQEAUp3Cb9KjEW0bsDLgGSD2Kkv+muU6Xi6V9opLTZOJe9WB10zZ gHtsk6dNJWtVG8JFcs0wLt1HgTFu9Rw9pyVUJWjH1x7Sk7WzOc/F9/EFBPrPicsg vslplduLyalPZ/CoWAeCaLmxP2fngiOsuVXbhpS07jAAgzPy37atsKDsFBigdCF8 1zQT8AHCj1XX3TneA4cXA8y9G9JBq5QoLpcRxhFlmwB97KRN0lnEvRA3zjH5PCui GoeWKDRu9WXOQz28yfCo0h8PRhuFJkBLFb/1N/COtdVGRpwgAkMbbZ9WbGYuNrku gpwN6xtL+BPQmc1pCsK+dkyf/R4JUzyL8jcjLw== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org